Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

FireBrick IPsec Tunnel with Manual Keys (Deprecated): Difference between revisions

FireBrick IPsec Tunnel with Manual Keys (Deprecated) (view source)

Revision as of 11:16, 28 June 2013

1,097 bytes added ,  28 June 2013
no edit summary
No edit summary
No edit summary
[[File:2700-small.png|link=:Category:FireBrick]]
 
=FireBrick IPSec Information=
 
Information from May 2013:
 
The IPSec feature provides ESP with ESP-auth and a choice of algorithms to create tunnels with a static config for keys. Blowfish is the fastest, if you have a choice. Triple DES is slowest, as you may expect.
 
At present the code can be used to create point to point fixed IP tunnels between FireBricks, or FireBrick and linux boxes. Other routers/VPN boxes may be able to handle fixed configs like this too.
 
Next we will be doing IKE (key exchange) which is more commonly used to establish session keys. We also plan to link in IPSec and L2TP which is commonly used for PCs and mobiles to VPN connect as an endpoint. More on this as we release it.
 
...this is all in-house code at every level with our own crypto libraries following the RFCs. We control every line of code in the FireBricks and the IPSec code is no exception.
 
This is an alpha release, and may well have bugs and issues that we need to work on, so we welcome feedback as usual. Please ensure crash logs are emailed as normal so we can pick up any fatal exceptions.
 
=FireBrick to FireBrick=
AA-Andrew
autoreview, Bureaucrats, editor, Interface administrators, reviewer, Administrators
12,290

edits

Retrieved from ‘http://support.aa.net.uk/Special:MobileDiff/3618